Total: Comptia Pentest+ (Ethical Hacking) + 2 Free Tests

From Total Seminars: Michael Solomon on ethical hacking & high-level penetration testing. Hack like a pro.

What you'll learn
Includes 2 Bonus Practice Exams. We have added a CompTIA PenTest+ Practice Test and a Certified Ethical Hacker CEH Practice Test.
How to plan and scope a penetration test as a contracted pen tester for a client (as an ethical hacker, you’ll be the good guy and get paid to hack networks!)
How to work within a virtual environment to practice your pen testing skills, including using Oracle VM manager, Kali Linux, Metasploitable, and DVWA
Where to find vulnerabilities and how to penetrate a network in order to run exploits, then how to report those vulnerabilities to the client for remediation
How to gather intel on a network by scanning and enumerating (finding) targets, then searching out the weak points on those targets
Understand social engineering attacks, exploit network-based vulnerabilities, and intercept traffic via on-path (man-in-the-middle) attacks
How to use pen testing tools like Nmap, Nessus, Nslookup, John the Ripper, Immunity Debugger, Aircrack-NG, Wireshark, and many more
How to write reports, explain post-delivery activities, and recommend remediation strategies to your client
Requirements
There are no requirements to take this course, nor are there any requirements to sit for the CompTIA PenTest+ exam, however, basic familiarity with networks and network security is suggested
It’s recommended to be familiar with the information in the CompTIA Network+ and Security+ exams
Although this course is a CompTIA PenTest+ exam prep, it’s also designed for a broader audience, so those without much network security knowledge can still gain valuable information on pen testing and ethical hacking
Description
Mike Meyers and the Total Seminars Team, your source for best-selling cybersecurity courses, brings you this ethical hacking and penetration testing course with your instructor Michael Solomon, Ph.D., CISSP, PMP, CISM. Prepare for the CompTIA PenTest+ PT0-002 exam. This is NOT a boring voice over PowerPoint course. Michael speaks to you and presents the material in an engaging interactive style that will keep you interested and make it easier to understand. Check out the free sample lectures and you will see the difference.We've added 2 bonus Practice Tests. One practice test covers the EC-Council Certified Ethical Hacker CEH certification exam. The other practice test covers the CompTIA PenTest+ certification exam. Test your readiness to pass either of these industry ethical hacking certification exams.With 30+ years of experience in security, privacy, blockchain, and data science, and an energetic presentation style, Michael takes his proficiency in network penetration testing and consolidates it into this informative and engaging course.WHY SHOULD I TAKE THIS COURSE?Did you know penetration testers' average salary is $71,929?* And this career is in one of the fastest-growing job markets.Whether you're looking to pass the CompTIA PenTest+ certification exam, take your next step in the CompTIA Cybersecurity Pathway, or you're just looking to learn some awesome ethical hacking skills, you’re in the right place. Keep in mind there's much more to being an ethical hacker than what's covered here, including how to secure a network, however this course focuses on how to be a pen tester. A pen tester plans and scopes a pen test engagement with a client, finds vulnerabilities, exploits them to get into a network, then reports on those findings to the client.This course shows you how to:Use the tools you’ll need to scan networks, crack passwords, analyze and intercept traffic, discover code vulnerabilities, and compromise resourcesRecognize vulnerabilities within a system, run exploits, and suggest solutions to a client to remediate the weak pointsWork within a virtual environment to practice your pen testing skills, including using Oracle VM manager, Kali Linux, Metasploitable, and DVWAScope, plan, and execute a pen test engagement from start to finishWHAT'S COVERED?PenTest+ Exam Domain  -  Percentage of Exam1.0 Planning and Scoping  - 14%Compare and contrast governance, risk, and compliance conceptsExplain the importance of scoping and organizational/customer requirementsGiven a scenario, demonstrate an ethical hacking mindset by maintaining professionalism and integrity2.0 Information Gathering and Vulnerability Scannings 22%Given a scenario, perform passive reconnaissanceGiven a scenario, perform active reconnaissanceGiven a scenario, analyze the results of a reconnaissance exerciseGiven a scenario, perform vulnerability scanning3.0 Attacks and Exploits  -  30% Given a scenario, research attack vectors and perform network attacksGiven a scenario, research attack vectors and perform wireless attacksGiven a scenario, research attack vectors and perform application-based attacksGiven a scenario, research attack vectors and perform attacks on cloud technologiesExplain common attacks and vulnerabilities against specialized systemsGiven a scenario, perform a social engineering or physical attackGiven a scenario, perform post-exploitation techniques4.0 Reporting and Communications 18%Compare and contrast important components of written reportsGiven a scenario, analyze the findings and recommend the appropriate remediation within a reportExplain the importance of communication during the penetration testing processExplain post-report delivery activities5.0 Tools and Code Analysis 16%Explain the basic concepts of scripting and software developmentGiven a scenario, analyze a script or code sample for use in a penetration testExplain use cases of the following tools during the phases of a penetration testEXAM INFOExam code: PT0-002Max. 85 questions (performance-based and multiple choice)Length of exam: 165 minutesPassing score: 750 (on a scale of 100-900)Exam voucher cost: $381Recommended experience: Network+, Security+ or equivalent knowledge. Minimum of 3-4 years of hands-on information security or related experience. While there is no required prerequisite, PenTest+ is intended to follow CompTIA Security+ or equivalent experience and has a technical, hands-on focus.HOW DO I TAKE THE COMPTIA PENTEST+ EXAM? Buy an exam voucher (get your discount voucher at Total Seminars' website), schedule your exam on the Pearson VUE website, then take the exam at a qualifying Pearson VUE testing center.WHAT'S THE BIG DEAL ABOUT THE COMPTIA PENTEST+, ANYWAY? CompTIA's PenTest+ is the only penetration testing exam taken at a Pearson VUE testing center or online, with both hands-on, performance-based questions and multiple-choice, to ensure each candidate possesses the skills, knowledge, and ability to perform tasks on systems.Penetration testing and information security is one of the fastest-growing job categories according to the U.S. Bureau of Labor Statistics. It predicts that roles requiring these skills will see 28 percent overall growth by 2026.COMPTIA PENTEST+ VS. EC-COUNCIL CEH CERTIFICATIONSThe CompTIA PenTest+ is your quickest and most cost-effective route to a pen testing certificationThe PenTest+ includes the latest mobile and cloud penetration testing skills, including IoT, as well as traditional desktop & server systems (CEH covers only traditional desktop & server systems)The PenTest+ better matches employer needs by covering not just technical topics, but also business processes, project flow, best practices, and professionalism in pen testing (CEH is strictly technical)The PenTest+ exam voucher costs $349 (compared to the CEH $1150 non-member plus application fee)Take a look at these student reviews:***** “This is an excellent course!! Even in earlier chapters, the instructor gets you going on sample exercises to chop up the theoretical content a little, which always helps. With a course like this, hands-on is everything. I also appreciate that the theoretical parts are NOT TOO LONG AT ONCE!! Total Seminars did a fantastic job of breaking the content up in just the right places. LOVE this course!” – Chris N***** “Amazing. Well Explained. Detail description for all the fundamental terms.” – Nisarg T***** “Instruction was excellent. Including notes as resources was a big help! I reviewed the notes while watching the videos and I think that is really going to help me with information retention. The instructor used real-world examples to demonstrate points. Overall, I feel confident I can pass the test after studying the materials and doing the exercises the instructor emphasizes. The instructor also highlighted several key points to study for the exam for maximum preparation.” - Tim W***** “This is what I was hoping for and it's much more upbeat than most of the lulling video series' I've seen before.” – John G***** “This course covers everything in the approved CompTIA PenTest+ certification test. The presenter knows his stuff, has done real work pentests and does a good job of showing off the tools you'll be quizzed on and how to manipulate and analyze the results. Highly recommend this for anyone with Security+ that is looking to specialize as a pentester. Great place to start!” – Casey D***** “Very well thought out course. The instructor is very knowledgeable, and the course is laid out in a great way! A lot of time was put into this and it shows!” – Luke P

Overview

Section 1: Introduction

Lecture 1 Introduction to the CompTIA PenTest+ (PT0-002) Course

Lecture 2 About the CompTIA PenTest+ (PT0-002) Exam

Section 2: Planning and Engagement

Lecture 3 Planning a Pen Test

Lecture 4 Rules of Engagement

Lecture 5 Regulatory Compliance

Lecture 6 Resources and Budget

Lecture 7 Impact and Constraints

Lecture 8 Support Resources

Lecture 9 Legal Groundwork

Lecture 10 Service Provider Agreements

Lecture 11 Standards and Methodologies, Part 1

Lecture 12 Standards and Methodologies, Part 2

Lecture 13 Environmental and Scoping Considerations

Lecture 14 Ethical Mindset

Lecture 15 Lab Environment Setup

Lecture 16 Project Strategy and Risk

Lecture 17 Scope Vulnerabilities

Lecture 18 Compliance-Based Assessments

Section 3: Information Gathering and Vulnerability Scanning

Lecture 19 Scanning and Enumeration

Lecture 20 Scanning Demo

Lecture 21 Packet Investigation

Lecture 22 Packet Inspection Demo

Lecture 23 Labtainers Setup

Lecture 24 Labtainers Lab (Wireshark)

Lecture 25 Application and Open-Source Resources

Lecture 26 Passive Reconnaissance

Lecture 27 Active Reconnaissance

Lecture 28 Vulnerability Scanning

Lecture 29 Vulnerability Scanning Demo

Lecture 30 Labtainers Lab (Network Basics)

Lecture 31 Labtainers Lab (Nmap Discovery)

Lecture 32 Target Considerations

Lecture 33 Analyzing Scan Output

Lecture 34 Nmap Scoping and Output Options

Lecture 35 Nmap Timing and Performance Options

Lecture 36 Prioritization of Vulnerabilities

Lecture 37 Common Attack Techniques

Lecture 38 Automating Vulnerability Scans

Lecture 39 Credential Attacks

Lecture 40 Labtainers Lab (Password Cracking)

Lecture 41 Labtainers Lab (Secure Socket Layers)

Lecture 42 Labtainers Lab (Routing Basics)

Section 4: Network-Based Attacks

Lecture 43 Exploit Resources and Network Attacks

Lecture 44 Network-Based Exploits

Lecture 45 FTP Exploit Demo

Lecture 46 Man-in-the-middle Exploits

Lecture 47 Labtainers Lab (TCP/IP Attacks)

Lecture 48 Labtainers Lab (ARP Spoof Attacks)

Lecture 49 Labtainers Lab (Local DNS Attacks)

Lecture 50 Labtainers Lab (MACs and Hash Functions)

Section 5: Selecting Pen Testing Tools

Lecture 51 Wireless Exploits

Lecture 52 Wireless Exploits, Part 2

Lecture 53 Antennas

Section 6: Reporting and Communication

Lecture 54 OWASP Top 10

Lecture 55 Application Exploits, Part 1

Lecture 56 SQL Injection Demo

Lecture 57 Labtainers Lab (SQL Injection)

Lecture 58 Application Exploits, Part 2

Lecture 59 Application Exploits, Part 3

Lecture 60 Cross-Site Scripting Demo

Lecture 61 Labtainers Lab (Cross-Site Scripting)

Lecture 62 Labtainers Lab (Cross-Site Request Forgery)

Lecture 63 Code Vulnerabilities

Lecture 64 API Attacks and Attack Resources

Lecture 65 Privilege Escalation (Linux)

Lecture 66 Privilege Escalation (Windows)

Lecture 67 Misc. Privilege Escalation

Lecture 68 Misc. Local Host Vulnerabilities

Section 7: Attacking the Cloud

Lecture 69 Cloud Attacks, Part 1

Lecture 70 Cloud Attacks, Part 2

Section 8: Specialized and Fragile Systems

Lecture 71 Mobile Attacks

Lecture 72 IoT Attacks

Lecture 73 Data Storage and Management Interface Attacks

Lecture 74 Virtual and Containerized Environment Attacks

Lecture 75 Labtainers Lab (Industrial Control System)

Section 9: Social Engineering and Physical Attacks

Lecture 76 Pretext for a Social Engineering Attack

Lecture 77 Remote Social Engineering

Lecture 78 Spear Phishing Demo

Lecture 79 In-Person Social Engineering

Lecture 80 Physical Security

Section 10: Post-Exploitation

Lecture 81 Post-Exploitation Techniques

Lecture 82 Post-Exploitation Tools

Lecture 83 Network Segmentation Testing

Lecture 84 Persistence and Stealth

Lecture 85 Detection Avoidance Techniques

Section 11: Post-Engagement Activities

Lecture 86 Report Writing

Lecture 87 Important Components of Written Reports

Lecture 88 Mitigation Strategies

Lecture 89 Technical and Physical Controls

Lecture 90 Administrative and Operational Controls

Lecture 91 Communication

Lecture 92 Presentation of Findings

Lecture 93 Post-Report Activities

Lecture 94 Data Destruction Process

Section 12: Tools and Programming

Lecture 95 Using Scripting in Pen Testing

Lecture 96 Bash Scripting Basics

Lecture 97 Bash Scripting Techniques

Lecture 98 PowerShell Scripts

Lecture 99 Ruby Scripts

Lecture 100 Python Scripts

Lecture 101 Scripting Languages Comparison

Lecture 102 Data Structures, Part 1

Lecture 103 Data Structures, Part 2

Lecture 104 Libraries

Lecture 105 Classes

Lecture 106 Procedures and Functions

Lecture 107 Perl and JavaScript

Section 13: Tools Inventory

Lecture 108 Pen Testing Toolbox

Lecture 109 Using Kali Linux

Lecture 110 Scanners & Credential Tools

Lecture 111 Code-Cracking Tools

Lecture 112 Open-Source Research Tools

Lecture 113 Wireless and Web Pen Testing Tools

Lecture 114 Remote Access Tools

Lecture 115 Analyzers and Mobile Pen Testing Tools

Lecture 116 Other Pen Testing Tools

Lecture 117 Labtainers Lab (Metasploit Framework)

Lecture 118 Labtainers Lab (Wireshark Packet Inspection)

Lecture 119 Labtainers Lab (SSH)

Lecture 120 Scanners, Debuggers, and Wireless Tools

Lecture 121 Web, Steganography, and Cloud Tools

Section 14: Practice Tests

Anyone interested in ethical hacking, pen testing, vulnerability testing, and network security,Anyone looking to prepare for the CompTIA PenTest+ (PT0-002) exam,Security Analysts, Network Security Ops, Application Security Vulnerability Analysts